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- ^NOTICES* 

JPO and NCIPI are not responsible for any 
damages caused by the use of this translation. 

1 .This document has been translated by computer. So the translation may not reflect the original 
precisely. 

2.**** shows the word which can not be translated. 
3.1n the drawings, any words are not translated. 



CLAIMS 



[Claim(s)] 

[Claim 1] The sensor equipment which detects the physiological description of the user of a device 
(BM), for example, a fingerprint, in the device for electronic equipment, for example, information 
processing, or a communication link (SE), b) The data processor for which it asks from the 
physiological description which had the information (FPAUTINF) used for a user's authentication 
detected (DE), c) A means to input the information (AUTINF) used for authentication through the 
input unit (EE) which inputs information, and this input unit, d) — or [ having asked ] — or the 
electronic equipment characterized by what it has test equipment (PE) which inspects the inputted 
authentication information, and releases the function of a device to the user of this ** when 
inspection is effective for. 

[Claim 2] Said data processor (DE) is a device according to claim 1 constituted so that identically to 
the authentication information (FPPIN) asked for the authentication information (PIN) inputted 
through an input unit for inspection of effective authentication from the physiological description of 
the user who has authority. 

[Claim 3] Said data processor (DE) is the device according to claim 1 or 2 which can use the 

multiple processes (M1 Mn) which search for the information (FPAUTINF1 FPAUTINFn) used 

for authentication of the user of this ** from a user's detected physiological description. 
[Claim 4] Said data processor is a device according to claim 3 as which a desired process is made 
to choose from the physiological description among the multiple processes which search for 
authentication information 1 to the user who has authority. 

[Claim 5] The device given [ to claims 1-4 ] in any 1 term which has a means to display the 
authentication information (FPAUTINF) searched for from a user's physiological description. 
[Claim 6] The user has the means which attests by using the physiological description of a proper 
for a user, or inputting authentication information through an information input unit. In the 1st case, 
sensor equipment detects a user's physiological description. How to attest the device user 
characterized by what it inspects with test equipment in quest of the information used for 
authentication from the detected physiological description, and the authentication information which 
the user inputted through the input unit in the 2nd case is inspected for with the same test 
equipment. 

[Claim 7] a) How to attest the device user according to claim 6 who has the step which asks for a 
feature vector from the measurement data of sensor equipment, the step which quantizes a vector 
from the feature vector b Called for, and the step which inspects the authentication information 
corresponding to the result of quantization of c vector. 



[Translation done.] 
* NOTICES * 
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DETAILED DESCRIPTION 

[Detailed Description of the Invention] 
[0001] 

Before using, very various electronic equipment by which a user has to perform authentication 
thru/or OSEN Tiffe KESHON is known. The main example is, the computer (information management 
system) of various configurations, communication equipment, for example, a mobile phone etc., etc. 
There are some which are generally protected by the password as opposed to the unauthorized use 
in these devices. Other devices have protected only the predetermined function by for example, the 
so-called personal identification number (PIN) to unlawful access. Predetermined data or protection 
of access to service also belongs to this. That is right, even when this is not used by the device and 
used by a computer network or the communication network. 
[0002] 

The input of the authentication information on the format used frequently today is an input through 
the keyboard of a device. The informational justification inputted after the input, as a result the 
authority of the user who performed the input are inspected with the test equipment of a device, a 
computer network, or a communication network. In the mobile phone based on GSM specification, 
this is performed by inspecting whether inputted PIN suits the information memorized by the SIM 
card using the data processor on the so-called SIM card of a device. In suiting, a mobile phone 
becomes usable by the SIM card. Where PIN was not memorized and is locked in a device based on 
GSM specification, when the SIM card memorizes, the security of the customer of a telephone goes 
up. 

[0003] 

The technique which can attest a user in the form of others from before for a while is used. This 
technique is based on detecting the physiological description of a proper by the special sensor to a 
user. This main example is a fingerprint detection sensor. Another physiological description is the 
property of the retina tissue the human being's eyes', or human being's voice, and these are similarly 
used by several sorts of devices. 
[0004] 

Usually, when the description detected by the sensor is compared with the known description of the 
user who has authority and is fully in agreement with a device or the data processor of a 
communication network, access to the function of desired service, required data, or the selected 
device is released. 
[0005] 

It is significant if authentication of the two above-mentioned formats combines mutually by the 
device of some types. For example, it is more desirable a user not only can to use a telephone by 
the fingerprint sensor, but to be able to carry out the share of PIN to other persons, or to be able to 
use in a mobile phone, so that it can use within the limits of the authority to which the device is 
given by the SIM card of a proper. The authentication which furthermore minded the fingerprint 
generates an error accidentally, or becomes activation impossible. This is the case where a user's 
hand is dirty or the user has stuck the glove. It is that desirable one (or thing which is the need) can 
be attested from these reasons or other reasons by the technique from which one person or two or 
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more users of a device differ. Physiological authentication is performed together with authentication 
by the PIN input in this case. In the mobile phone based on GSM specification, this specification has 
defined the authentication means by the PIN input beforehand compulsorily. 
[0006] 

The above-mentioned situation shows that the conventional physiological authentication process is 
impossible in the mobile phone based on GSM specification. It is because authentication by PIN 
using a SIM card is surely required from the reason of compatibility over GSM specification. As a 
means which looks possible for the time being, PIN is memorized in a device, and this is eliminated 
although it is possible to transfer PIN memorized in accordance with the detected fingerprint and 
the fingerprint with which the user who has authority was memorized when inspection is effective to 
a SIM card, and to inspect it. It is because it is forbidden by GSM specification from the reasons of 
security to memorize PIN in somewhere else other than the interior of a SIM card in a mobile phone. 
Physiological authentication is taken into consideration as a security means additional in this case. 
However, such an additional security means is unnecessary if it carries out from the high safety of 
authentication by the PIN input, and many users cannot accept it easily and should sense it. 
[0007] 

The technical problem used as the foundation of this invention is offering the technical thought 
which makes possible combination of a physiological user's authentication, and authentication by the 
PIN input also in the mobile phone of GSM specification or a similar case, and enables it to fully 
utilize authentication of each format. It has the option whether a user wants to use authentication 
of which format. However, it can have a means by which the user (for example, owner of a device) 
chosen especially can adjust logic AND association of two authentication formats in a device. This 
technical problem is solved by the claim by the device or approach of a publication. 
[0008] 

In this invention, a user's physiological description is detected by sensor equipment and the 
information used for authentication is searched for using a mathematical process from the detected 
physiological description. Authentication information arises in the culmination which evaluates the 
physiological description by this, and this information is inspected with the same test equipment as 
inspecting the authentication information which the user inputted through the information input 
device (for example, keyboard). In the easiest case, the result of assessment of a fingerprint 
becomes the same thing as PIN which the user inputted through the keyboard. However, this PIN is 
calculated from a user's physiological description detected by sensor equipment rather than is 
memorized by the device. 
[0009] 

According to the format of evaluating the physiological description detected by sensor equipment, 
authentication of this format does not need to become equivalent to the result of authentication 
through the input of a keyboard, and it becomes unnecessary to change the usual interface which 
inspects the validity of authentication. It is not necessary to change a certain protocol standardized 
especially. The two technique of authentication can be used in [ it is satisfactory and ] juxtaposition. 
A user can choose two technique freely, in any condition at any time. It can also constitute so that 
authorization may be given only to the user to whom the two authentication technique passed 
effectively, of course using AND association. 
[0010] 

Below, this invention is **(ed) in the advantageous example and explained at a detail using drawing. 
[0011] 

The example of this invention by which all approaches and equipment are accumulated into the 

device is shown in drawing 1 . 

[0012] 

The example of this invention to which test equipment exists in a device is shown in drawing 2 . 
[0013] 
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The example of this invention on which the display which displays authentication information is 

accumulated by the device is shown in drawing 3 . 

[0014] 

An example typical and important for this invention moreover is a mobile phone based on GSM 
specification, and this uses a fingerprint sensor for a user's authentication. This fingerprint sensor is 
the special example of the sensor equipment SE shown in drawing 1 . The user of Device EG puts a 
finger on this fingerprint sensor, and if it is standing by attesting inputs of a device, such as PIN, 
SuperPIN, or PIN2 (it being selectively dependent on a manufacturer), a fingerprint sensor detects 
the suitable physiological description BM of the user of this **, and sends this out to data- 
processor DE. 
[0015] 

In the case of a GSM mobile phone, this data processor is with the processor already prepared in 
the mobile phone, and the software which operates on this processor, however, on the other hand, 
the special software with which sensor equipment or — general — is used through the processor 
unit of a proper, and a fingerprint sensor manages fingerprint recognition on this processor unit 
operates. Thereby, the data processor is incorporated in sensor equipment completely selectively in 
the range of this invention. As for the fingerprint recognition itself, like other technique of 
recognizing the physiological description, since it is fully common knowledge at this work engineer, 
the implementation gestalten (and integration of partitioning with a subsystem, or a well-known 
hardware module), i.e., the various configurations, of a data processor, about this part, especially a 
problem does not have them in implementation of the security of this invention. 
[0016] 

According to this invention, a data processor searches for the information which was suitable for a 
user s authentication from the detected physiological description. It is PIN (or PIN2 in addition to 
this) memorized in the condition of having been locked on the SIM card of the user regarded as this 
having authority in the easiest case. This PIN is handed over and inspected to a SIM card, as the 
user inputted through the keyboard (information input unit) of a mobile phone. Next, to this work 
engineer, the inspection process set to well-known GSM specification operates within the test 
equipment (a SIM card, equipment connected with the data processor of a device by the case) of a 
mobile phone. When the authentication information FPAUTINF is in agreement with PIN memorized 
on the right case, i.e., a SIM card, the functions (for example, network access etc.) of the device 
protected according to authentication are released. 
[0017] 

The important advantage of the means of above-mentioned this invention is that the fingerprint 
recognition section hands over a user's PIN to a SIM card, when the user has authority. It is 
because it is not necessary to change the security protocol of GSM specification at all by this. This 
advantageous property does not exist in a means by which it is thought that others are fundamental, 
make it any — with other means, the input of additional PIN through a keyboard is needed, or 
evasion thru/or modification of GSM specification is needed. The input of additional PIN through a 
keyboard is effective only when taking into consideration as an additional security means which 
added fingerprint recognition to the PIN input 
[0018] 

Of course, such additional authentication is possible also by this invention. In this case, it is not 
necessary to transmit the authentication information searched for from sensor data to a SIM card. 
Instead, PIN which was intentionally mistaken, for example may be transmitted to a SIM card, or an 
input error, interruption, others of an input, etc. may be simulated. On the other hand, a SIM card 
newly requires an PIN input. In accordance with PIN asked for inputted PIN, when interexchangeable, 
data-processor DE transmits this PIN to a SIM card, and release is permitted according to this. 
[0019] 

PIN calculated from sensor data, of course may not necessarily be the same as that of PIN of a SIM 
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card. By above-mentioned specification or other above-mentioned devices, when a suitable security 
protocol grants a permission each time, test equipment can inspect whether these suit mutually 
using two different authentication information. 
[0020] 

When there is authentication information FPAUTINF calculated from sensor data only by one 
authentication (namely, authentication simultaneous with an PIN input or authentication independent 
of this) by sensor data, by other devices which are not based on GSM specification, it may differ 
from the authentication information AUTINF inputted through the keyboard, but if two information 
directs the user who has authority, these will recognize test equipment to conform simultaneously. 
[0021] 

All mathematical simulation (function) is fundamentally taken into consideration as a count process 
over the authentication information FPAUTINF acquired from the physiological description BM, and 
the authentication (generally it encoded with alphabetic character) information AUTINF on other 
formats is assigned to a fingerprint or other physiological descriptions BM. The following conditions 
must be satisfied here, namely, a — the same authentication information FPAUTINF fully draws 
from the similar physiological description BM — having — b — authentication information 
FPAUTINF which is different from the fully different physiological description BM draws — having — 
c — for an inaccurate user, what the authentication information FPAUTINF is searched for for from 
the physiological description BM or the information of this description BM (for example, it guesses) 
is an impossible thing substantially. 
[0022] 

It guarantees that Conditions a fully have fingerprint recognition by the low bust also to a small 
noise. Otherwise, it is because the rate that the user who has authority is refused becomes very 
high. Conditions b are established so that a different user's fingerprint may derive the authentication 
information FPAUTINF various by the probability high enough to this. The meaning of Conditions c is 
clear. 
[0023] 

The various mathematical simulation which is satisfied with this contractor (there is some of 
appropriateness by the case) of this demand is common knowledge. The simulation which has these 
properties is given by the so-called vector quantization. About the technique of common knowledge 
to this contractor, the individual reason considered to be here required for an understanding of this 
invention outside is not explained. 
[0024] 

It is premised on the physiological description detected by sensor equipment being first moved to 
the so-called format of a feature vector in case this technique is used for the object of this 
invention. This assumption does not turn into any definition actually, either. It is because sensor 
data are expressed as n groups who were always able to set in order n measurement data (feature 
vector). A feature vector forms n-dimensional space. In this space, the set (code book vector) of a 
pattern vector exists, and an interval scale (degree of the resemblance to the physiological 
description) is specified. The eel in space exists to each pattern vector, this eel ****s in each 
feature vector in a eel, and the pattern vector is prescribed by by being the eel of the pattern 
vector which exists in a degree within the limits of the interval scale of this **. 
[0025] 

The information for which it was fundamentally suitable in authentication is assigned to each pattern 
vector. Exact authentication information (for example, true PIN) is assigned to one pattern vector. If 
it asks for the pattern vector which exists in a degree to the predetermined feature vector which 
****s to the detected sensor data so that clearly from the above-mentioned explanation, when the 
user of this ** has authority, exact information (true PIN) is drawn, and when that is not right, the 
mistaken authentication information will be sent out. The error rate of this process can be optimized 
when it is guaranteed that the feature vector relevant to the physiological description of the user 
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who has authority is one of the pattern vectors. This is attained by fitting this system to the 
physiological description of the user who has authority in an initialization phase (formation of code 
book adaptation). 
[0026] 

Vector quantization is not the only technique which can be used in relation to this invention. Other 

technique of not explaining to this contractor here can be enforced. 

[0027] 

Originally calculating the authentication information FPAUTINF by vector quantization from a users 
physiological description is connected with "storage of PIN" by the device (if based on this 
description). It is because the possible authentication information FPAUTINF is fundamentally 
assigned to each pattern vector of a code book. However, this is actually (except for one users, i.e., 
the user who has authority, feature vector) suitable for authentication in almost no cases. Although 
it is got blocked, for example, all possible PIN is ideally memorized in PIN of the alphabetic character 
of 5 figures and a pattern vector is assigned to every one each of these, only when a pattern vector 
is fully detected by accuracy, addressing can be carried out to appropriate PIN within a sensor. The 
number of possible PIN will become large too much, and it will become impossible therefore, to find 
out exact PIN in spite of "memorizing in the device" except the user who has the exact 
physiological description. Such a situation is not taken into consideration when memorizing PIN to a 
device by specification is forbidden. 
[0028] 

Memorizing PIN to a device is not permitted by GSM specification. However, the need of changing 
PIN is produced frequently. This is the case where PIN is known by the 3rd person etc. However, it 
is that which calculates PIN from a fingerprint in this invention (that is, it calculates), and unless 
exchange of a fingerprint or other physiological descriptions is possible, this is impossible first. If a 
means to change PIN is still given to a user, it constitutes so that it may replace only with one 
count process and all sets of this kind in a device of process can be equally used according to the 
advantageous operation gestalt of this invention. The consecutive number is assigned to each count 
process and the user who has authority to this can change the process to be used at any time. 
Since each processes M1, Mn over the same fingerprint BM calculate other PIN (FPAUTINF1, 
FPAUTINFn), it chooses whether a user makes much PIN calculate in which process. 
[0029] 

The example of this invention is realizable similarly with vector quantization. Not only a code book 
but two or more code books of a pattern vector are prepared here. Each code book has the 
predetermined number and is selectable through this number. Probably it depends for other 
processes on a parameter. In this invention, other mathematical simulation is formed by changing 
this parameter. If the dependency of a parameter is fully complicated, as for modification of 
authentication information, a guess will become impossible even if it changes a parameter actually. 
The neural network (the so-called multilayer perceptron) of a predetermined type is suitable for 
realizing this kind of simulation. With the means based on this neural network, actually, anywhere, 
PIN is not memorized as a notation sequence but is only memorized by network architecture as a 
weighting multiplier (in the condition of having been locked suggestively). 
[0030] 

Especially in this example of this invention, it is taken into consideration from a viewpoint for which 
the sequence of the password with which many persons differ is needed to the thoroughly different 
object or a thoroughly different device. It should become increasingly difficult to care about many 
passwords. When using multiple processes M1, .... Mn (mathematical simulation) for count from the 
only feature vector (sensor data aggregate) of two or more authentication information (FPAUTINF1, 
FPAUTINF2), the problem at the time of detecting the physiological description which a user cannot 
do at **** of a proper is reduced by the suitable sensor. 
[0031] 
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What is necessary is just to input the index of this kind of process in the context only prepared in a 
user's actuation front face, in order to choose a predetermined process. Thereby, a data processor 
can constitute suitably for every software. 
[0032] 

Of course, two or more persons' physiological description is also combinable with one or more right 
PIN. When the device is combined only with one person as an exception (i.e., when only one SIM 
card is used for accuracy), release can be additionally combined with other security devices, for 
example, the code of a device etc. According to this invention, the flexibility of each format, high 
safety, and the compatibility over specification are acquired here. 
[0033] 

When changing PIN, in the another advantageous example of this invention, the display for 
presenting of authentication information is prepared especially. Since this kind of displays are this 
kind of devices [ many ] and have already existed since the start, this can be used for this object If 
it is going to change the authentication information AUTINF (for example, PIN) which the user 
inputted through the keyboard into the information which suits a SIM card, in some count processes, 
combination of the figure of all possible notations cannot use it as PIN by the case. For example, it 
is because it is smaller than the number of all PIN in which a code book is possible. This case is 
enough to assign PIN to a pattern vector and change PIN corresponding to an individual pattern 
vector if the parameter of the count process used is changed (for example, modification of a code 
book number or modification of a neural network's parameter). If PIN on a SIM card (or PIN which 
should generally be inputted) is not known after that, it becomes impossible to change in this 
semantics. And this is required because of the further utilization to the technical problem of this 
invention. The user who has authority can be told about changed PIN by making the display of a 
device give a short-time indication only once suitably, advantageously, after changing PIN. Other 
means (for example, show new PIN later) are possible. 
[0034] 

Of course, this invention is not limited to a mobile phone, for example, the mobile phone based on 
GSM specification. It is not difficult for this contractor to realize this invention in other devices or 
alien systems based on the above-mentioned explanation, either. 
[0035] 

Especially this invention is not limited only to the case where the inspection unit PE is accumulated 
into the device. The important example of a device is shown in drawing 2 , a device is connected 
with other at least one device through a communication network, and test equipment also exists in a 
network here. Moreover, the part which manages calculating the authentication information 
FPAUTINF from a part of data processor or data processing unit DE BM, i.e., a users physiological 
description, does not necessarily need to exist in a device, either. Of course, the device does not 
need to have the accumulated sensor equipment SE or the accumulated keyboard EE. It is also 
clear that equipment may be connected to a device in the form of an external module. The example 
of this invention should be protected by the claim of an approach. 
[Brief Description of the Drawings] 
[Drawin g 1] 

All approaches and equipment are drawings showing the example of this invention accumulated into 
the device. 
[Drawing 2] 

All approaches and equipment are drawings showing the example of this invention accumulated into 
the device. 
[Drawing 3] 

The display which displays authentication information is drawing showing the example of this 
invention accumulated by the device. 
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[Drawing 2] 
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[Drawing 3] 
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